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1 Computer science in health and education: The use of smart devices in eHealth f| 
John Fulcher 

September 2003 Proceedings of the 1st international symposium on Information and 
communication technologies ISICT '03 

Publisher: Trinity College Dublin 

Full text available: ^] pdf( 124.20 KB ) Additional Information: full citation , abstract , references 

Results from a field trial involving the use of USB iKeys as a secure access mechanism for 
remote access of patient medical records from a central server are reported. These are 
discussed within the context of eHealth generally, where technological considerations can 
easily be outweighed by concerns of patient privacy, security and confidentiality. 



Logical and physical design issues for smart card databases 

Cristiana Bolchini, Fabio Salice, Fabio A. Schreiber, Letizia Tanca 

July 2003 ACM Transactions on Information Systems (TOIS), volume 21 issue 3 

Publisher: ACM Press 

Additional Information: full citation , abstract , references , citing s, index 
terms 



□ 



Full text available:^ pdf d . 12 MB) 



The design of very small databases for smart cards and for portable embedded systems is 
deeply constrained by the peculiar features of the physical medium. We propose a joint 
approach to the logical and physical database design phases and evaluate several data 
structures with respect to the performance, power consumption, and endurance 
parameters of read/program operations on the Flash-EEPROM storage medium. 

Keywords: Design methodology, access methods, data structures, flash memory, 
personal information systems, smart card 



3 Mana g ement guidelines for PC security Q 
Troy E. Anderson 

July 1994 ACM SIGICE Bulletin, volume 20 issue 1 
Publisher: ACM Press 

Full text available: Q pdf(901.93 KB) Additional Information: full citation , abstract , references , index terms 

In the last several years, the number of personal computers (PCs) in offices worldwide 
has skyrocketed. In fact, some businesses now have PC bases in the thousands, a fact 
which makes company security officers' jobs a nightmare. Much of the existing literature 




http://portal.acm.org^^ 3/22/2007 



Results (page 1): Patient Health Record on a Smart Card 



Page 2 of 6 



addresses security in general, or security in large mainframe environments. The goal of 
this paper is to present potential security problems for stand-alone and networked PCs, 
and to offer guidelines to prevent or avoid these threats to PC ... 

4 Mobility and sociability: Smart card product development in an internet-based CRM I I 
environment 

Pat O'Brien, Laith Murad, Simon Gibbs, Richter Rafey 

November 2005 Proceedings of the 2005 conference on Designing for User experience 
DUX '05 

Publisher: AIGA: American Institute of Graphic Arts 

Full text available: ^| pdf ( 773.44 KB ) Additional Information: full citation , abstract , references 

Smart cards have been successfully deployed in Europe and Asia. The European 
Community considers them imperative and is funding 65 card development projects. In 
the US, however, the cards hold less interest and have been less successful. Technology 
diffusion research indicates social learning is critical to adoption. A small cadre of early 
adopters, through visible daily use of new products, creates a perception among other 
consumers that new products are beneficial and desirable.This study devel ... 

Keywords: CRM, FeliCa, concept design, handheld devices and mobile computing, 
marketing / market research, product management, prototyping, smart card, ubiquitous 
computing / smart environments, user research, user studies 



5 Smart card: Modelling audit security for Smart-Card payment schemes with UML- I I 
SEC 

Jan Jurjens 

June 2001 Proceedings of the 16th international conference on Information security: 
Trusted information: the new decade challenge Sec '01 

Additional Information: full citation , abstract , references , index terms 

To overcome the difficulties of correct secure systems design, we propose formal 
modelling using the object-oriented modelling language UML. Specifically, we consider the 
problem of accountability through auditing. We explain our method at the example of a 
part of the Common Electronic Purse Specifications (CEPS), a candidate for an 
international electronic purse standard, indicate possible vulnerabilities and present 
concrete security advice on that system. To overcome the difficulties of corre ... 

6 S pecial session on mobile computin g #1: Develo ping smart card a p plications usin g I I 
^ the OpenCard Framework 

Mark Burge 

April 2004 Proceedings of the 42nd annual Southeast regional conference ACM-SE 42 

Publisher: ACM Press 

Full text available: ||| pdf(428.99 KB) Additional Information: full citation , abstract , references , index terms 

Smart cards provide a compact, secure, and widely used method for identifying ourselves 
and authenticating our transactions. With their increasing incorporation into credit cards 
and the cellular industries move toward smart card based GSM networks, they are 
positioned to become truly pervasive. Unfortunately, until now, teaching smart card 
development required expensive, specialized hardware and software as well as detailed, 
and usually proprietary, knowledge of the hardware and operating syste ... 

Keywords: JCOP, Java Card, Mobile Computing, OpenCard Framework, Smart Cards, 
design patterns, pervasive computing 
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A web-enabled framework for smart card a p plications in health services Q 
Alvin T. S. Chan, Jiannong Cao, Henry Chan, Gilbert Young 
September 2001 Communications of the ACM, volume 44 issue 9 

Publisher: ACM Press 

Full text TOltable: ffiy;g-g^; Additional Information: full citation , references , citings, index terms 
|3T| ntml(29.o4 Kb; 



8 Web technologies and applications (WTA): Cookies on-the-move : managing cookies I I 
on a smart card 
Alvin T. S. Chan 

March 2004 Proceedings of the 2004 ACM symposium on Applied computing SAC '04 

Publisher: ACM Press 

Full text available: ^]pdf( 335.19 KB ) Additional Information: full citation , abstract , references 

Despite the widespread use and adoption of cookies as the basis for web applications to 
keep state information, cookies present some design issues that are yet to be fully 
addressed. The fact that cookies are stored on client-side's memory means that they are 
tightly coupled to the machine that is interacting with the web server. Yet often, these 
cookies are initiated by web applications to identify user's preferences and identifications. 
As the user moves across different machines to access the ... 

Keywords: Web, cookies, mobile, smart card 




FACADE: a t y ped intermediate lan guag e dedicated to smart cards LJ 
Gilles Grimaud, Jean-Louis Lanet, Jean-Jacques Vandewalle 

October 1999 ACM SIGSOFT Software Engineering Notes , Proceedings of the 7th 
European software engineering conference held jointly with the 7th 
ACM SIGSOFT international symposium on Foundations of software 
engineering ESEC/FSE-7, volume 24 issue 6 
Publisher: Springer-Verlag, ACM Press 

Full text available: 111 pd ff1.23MB) AdditionaI ,nformatjon: fuli citation ' ^stract, references , citings, index 
m terms 

The use of smart cards to run software modules on demand has become a major business 
concern for application issuers. Such down-loadable executable content needs to be 
trusted by the card execution environment in order to ensure that an instruction on a 
memory area is compliant with the definition of the data stored in this area (i.e. its type). 
Current solutions for smart cards rely on three techniques. For Java Card, either an off- 
card verifier-converter performs a static ... 

10 Simulation of a smart card-based manufacturing s ystem Q 
S. Manivannan, Chen Zhou, M. Bullington, S. Narasimhan 

December 1992 Proceedings of the 24th conference on Winter simulation WSC '92 
Publisher: ACM Press 

Full text available: ^|pdf( 891.73 KB ) Additional Information: full citation , references , index terms 



11 Design analysis techniques: Energv-aware desi g n techniques for differential power 
analysis protection 

Luca Benini, Alberto Macii, Enrico Macii, Elvira Omerbegovic, Fabrizio Pro, Massimo Poncino 
June 2003 Proceedings of the 40th conference on Design automation DAC '03 
Publisher: ACM Press 
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Full text available:^) pdf(286.41 KB) Additional Information: full citation , abstract , references , citings , index 

terms 

Differential power analysis is a very effective cryptanalysis technique that extracts 
information on secret keys by monitoring instantaneous power consumption of 
cryptoprocessors. To protect against differential power analysis, power supply noise is 
added in cryptographic computations, at the price of an increase in power consumption. 
We present a novel technique, based on well-known power-reducing transformations 
coupled with randomized clock gating, that introduces a significant amount of sera ... 

Keywords: differential power analysis, low-power design 



12 VLSI desi g n: A novel architecture for power maskable arithmetic units Q 
L Benini, A. Macii, E. Macii, E. Omerbegovic, M. Poncino, F. Pro 

April 2003 Proceedings of the 13th ACM Great Lakes symposium on VLSI GLSVLSI '03 
Publisher: ACM Press 

Full text available- IS df(166 52 KB) Ac, diti ona ' Information: full citation, abstract , references , citings, index 
. 12fl ^ : t erms 

Power maskable units have been proposed as a viable solution for preventing side- 
channel attacks to cryptoprocessors. This paper presents a novel architecture for the 
implementation of a class of such kinds of units, namely arithmetic components, which 
find wide usage in cryptographic applications and which are not suitable to traditional 
masking techniques. Results of extensive exploration and architectural trade-off analysis 
show the viability of the proposed solution. 

Keywords: cryptography, low-power design, security 



13 Cross-domain one-shot authorization using smart cards 
Richard Au, Mark Looi, Paul Ashley 

November 2000 Proceedings of the 7th ACM conference on Computer and 

communications security CCS 'OO 
Publisher: ACM Press 

Full text available: ^ pdf ( 283.05 KB ) Additional Information: full citation, references , citings, index terms 




Keywords: access control, authorization scheme, authorization server, one-shot 
authorization token, smart card 

14 Management g uidelines for PC securit y Q 
Troy E. Anderson 

N/ March 1992 ACM SIGSMALL/PC Notes, Volume 18 issue 1-2 

Publisher: ACM Press 

Full text available: ^| pdf(549.37 KB) Additional Information: full citation , abstract , references , index terms 

"PC crime is a corporate fact of life, and as proprietary information becomes a strategic 
resource, its loss through manipulation, theft and viral infection threatens the very 
survival of businesses [Bakst, pg 44]." Awareness of security is an increasingly important 
topic in the business world, and in many other areas where computers are an essential 
part of the organization. As corporations attempt to protect their competitive positions in 
the national and international markets, managers are st ... 
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Alvin T. S. Chan 

November 2005 Communications of the ACM, volume 48 issue n 
Publisher: ACM Press 

Full text available: jplpd ff 11 4.99 KB) A ._ 4 . , . , ( ^ * 

[f'rr' n nA ' Additional Information: full citation , abstrac t, references , index terms 
|w| ntml(2o.U4 Kb ) 

With CookiesCard, cookies are stored on users' smart cards, coupling cookies to users, 
not to their machines. 

16 Compilation and power: Power consumption profile analysis for security attack I I 

simulation in smart cards at hi g h abstraction level 
K. Rothbart, U. Neffe, Ch. Steger, R. Weiss, E. Rieger, A. Muehlberger 
September 2005 Proceedings of the 5th ACM international conference on Embedded 

software EMSOFT '05 
Publisher: ACM Press 

Full text available: ^ pdf( 273.4Q KB ) Additional Information: full citation , abstract , references , index terms 

Smart cards are embedded systems which are used in an increasing number of secure 
applications. As they store and deal with confidential and secret data many attacks are 
performed on these cards to reveal this private information. Consequently, the security 
demands on smart cards are very high. It is mandatory to evaluate the security of the 
design but this is performed often very late in the design process or when the chip has 
already been manufactured. This paper presents a hierarchical securi ... 

Keywords: SystemC, analysis, attack, embedded security, fault injection, power profile, 
simulation, smart card 



17 Countermeasures for attacks on satellite TV cards usin g o pen receivers 
Lishoy Francis, William G. Sirett, Keith Mayes, Konstantinos Markantonakis 
January 2005 Proceedings of the 2005 Australasian workshop on Grid computing and 
e-research - Volume 44 ACSW Frontiers '05 

Publisher: Australian Computer Society, Inc. 

Full text available: ^|pdf (100.10 KB ) Additional Information: full citation , abstract , references , index terms 

Digital content providers seek to restrict usage by implementing conditional access. One 
such scenario is the security aspects of digital video broadcast (DVB-S). There has been a 
history of attacks on this technology to circumvent any security measures and some 
techniques have been countered by the deployment of customised/provider specific 
receivers. However, this leads to less choice and the duplication of equipment at the 
customer level. Open satellite receivers have been introduced to allow ... 

Keywords: DVB, attacks and countermeasures, satellite content 



18 A Lo g ic Level Desi g n Methodology for a Secure DPA Resistant ASIC or FPGA I I 
Implementation 
Kris Tiri, Ingrid Verbauwhede 

February 2004 Proceedings of the conference on Design, automation and test in 
Europe - Volume 1 DATE '04 

Publisher: IEEE Computer Society 

Full text available: ^pdf( 143.96 KB ) Additional Information: full citation , abstra ct, citings, index terms 

This paper describes a novel design methodology to implement a secure DPA resistant 
crypto processor. The methodology is suitable for integration in a common automated 
standard cell ASIC or FPGA design flow. The technique combines standard building blocks 
to make new'compound standard cells, which have a close to constant power 
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consumption. Experimental results indicate a 50 times reduction in the power 
consumption fluctuations. 

19 New directions for integrated circuit cards operatin g systems 

Pierre Paradinas, Jean-Jacques Vandewalle 
N< January 1995 ACM SIGOPS Operating Systems Review, volume 29 issue 1 

Publisher: ACM Press 

Full text available: ^g| p df (422.64 KB ) Additional Information: full citation , abstract , index terms 

Integrated circuit cards or smart cards are now well-known. Applications such as 
electronic purses (cash units stored in cards), subscriber identification cards used in 
cellular telephone or access keys for pay-TV and information highways emerge in many 
places with millions of users. More services are required by applications providers and 
card holders. Mainly, new integrated circuit cards evolve towards non-predefined multi- 
purpose, open and multi-user applications. Today, operating systems imp ... 

Keywords: integrated circuit card applications, integrated circuit card operating system, 
object-oriented technologies, secured method execution 



20 Risk transparency: Privacy and security threat analysis of the federal employee 
personal identity verification (P1V ) program 
Paul A. Karger 

July 2006 Proceedings of the second symposium on Usable privacy and security 
SOUPS '06 

Publisher: ACM Press 

Full text available: ^)pdf( 113.11 KB) Additional Information: full citation , abstract , references , index terms 

This paper is a security and privacy threat analysis of new Federal Information Processing 
Standard for Personal Identity Verification (FIPS PUB 201). It identifies some problems 
with the standard, and it proposes solutions to those problems, using standardized 
cryptographic techniques that are based on the Internet Key Exchange (IKE) protocol 
[16]. When the standard is viewed in the abstract, it seems to effectively provide security 
and privacy, because it uses strong cryptographic algorithms. ... 
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